o cD @sdZddlmZddlZddlmZmZmZmZm Z m Z m Z m Z m Z mZmZmZddlmZddlmZedkr>ed edZeeeed Zed kr^ed eded fddZeddZ eddZ!eZ"e Z#eZ$eZ%eZ&eZ'eZ(eZ)eZ*eZ+eZ,ee+Z-eZ.e Z/ee%Z0ee&Z1ee'Z2ee(Z3ee)Z4eZ5eZ6eZ7eeZ8eZ9eZ:eeZ;eZeZ?eZ@eeZAeeZBeZCeZDeZEeZFeZGeZHze0e1ee9ee:eee2ge jI_Je/e jI_Kge jL_Je,e jL_Kge jM_Je,e jM_Kge jN_Je,e jN_Ke.e0ge jO_Je8e jO_Ke8ge jP_Je0e jP_Ke/ege jQ_Je1e jQ_Ke-e8ee;ge jR_Je/e jR_Ke eee"eee>ge jS_Je/e jS_Ke>ge jT_Je/e jT_Ke0e4ee2ge jU_Je/e jU_Kee/eCeee ZVee/eCee ee ZWeAeVeWge jX_Je/e jX_KeAe e ge jY_Je/e jY_KeAe2ge jZ_Je/e jZ_KeAe-e"ge j[_Je/e j[_KeAeCge j\_Je/e j\_KeAe e ge j]_Je/e j]_KeAge j^_Je/e j^_KeAe e ee ge j__Je/e j__KeAe e ee ge j`_Je/e j`_KeAge ja_Je/e ja_KeAee ge jb_Je/e jb_KeAee@ee ge jc_Je/e jc_KeAee@e ge jd_Je/e jd_KeAee ge je_fe/e je_KeAee@ee ge jg_Je/e jg_KeAee@ge jh_Je/e jh_KeAee?ge ji_Je/e ji_KeAeeBge jj_Je/e jj_KeBe2ge jk_Je/e jk_KeBe"ge jl_me/e jl_KeBeeDge jn_Je/e jn_KeBge jo_Je#e jo_KeBe#ge jp_Je8e jp_Ke.eFeGge jq_JeAe jq_KeAeHe"ge jr_Je/e jr_KeAe?ge js_Je/e js_KeAe?ge jt_Je/e jt_Kz eAe2ge ju_Je/e ju_KWn evyYnwe/ege jQ_Je1e jQ_KeVe _VeWe _WeAe _Ae?e _?e@e _@e;e _;e>e _>eBe _BeDe _De9e _9e/e _/e1we de _xe1we de _ye-ge!jz_Je-e!jz_Ke-ge!j{_Jde!j{_Ke-ge!j|_Je,e!j|_Ke.e e$ge!j}_Je1e!j}_Ke1e$ge!j~_Je e!j~_Ke1e e#e$ge!j_Jee!j_Ke.e e#ge!j_Je0e!j_Ke0ge!j_Je#e!j_Ke0ge!j_Jee!j_Ke.ee-ee-e#e6e7ge!j_Je4e!j_Ke4e-ge!j_Je-e!j_Ke.ee-e#e5ge!j_Je2e!j_Ke.e#e5ge!j_Je3e!j_Ke3ege!j_Jde!j_Ke2ge!j_Je#e!j_Ke2e#ge!j_Jee!j_Ke.we!de!_ewe!de!_ewe!de!_ewe!de!_e-e!_-e2e!_2e1e!_1e4e!_4Wn evyedwGdddeZGdddeZdS)ay This module uses ctypes to bind a whole bunch of functions and constants from SecureTransport. The goal here is to provide the low-level API to SecureTransport. These are essentially the C-level functions and constants, and they're pretty gross to work with. This code is a bastardised version of the code found in Will Bond's oscrypto library. An enormous debt is owed to him for blazing this trail for us. For that reason, this code should be considered to be covered both by urllib3's license and by oscrypto's: Copyright (c) 2015-2016 Will Bond Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. )absolute_importN) CDLL CFUNCTYPEPOINTERc_boolc_bytec_char_pc_int32c_longc_size_tc_uint32c_ulongc_void_p) find_library) raise_fromDarwinzOnly macOS is supported.) z1Only OS X 10.8 and newer are supported, not %s.%scCsTztdkr|}nt|}|stt|ddWSty)ttd|dYdSw)z:Loads a CDLL by name, falling back to known path on 10.16+)rT) use_errnozThe library %s failed to loadN) version_inforOSErrorrr ImportError)namemacos10_16_pathpathrV/opt/certbot/lib/python3.10/site-packages/urllib3/contrib/_securetransport/bindings.py load_cdllAs r!Securityz6/System/Library/Frameworks/Security.framework/SecurityCoreFoundationzB/System/Library/Frameworks/CoreFoundation.framework/CoreFoundationkSecImportExportPassphrasekSecImportItemIdentitykCFAllocatorDefaultkCFTypeArrayCallBackskCFTypeDictionaryKeyCallBackskCFTypeDictionaryValueCallBackszError initializing ctypesc@seZdZdZedZdS)CFConstz_ A class object that acts as essentially a namespace for CoreFoundation constants. iN)__name__ __module__ __qualname____doc__CFStringEncodingkCFStringEncodingUTF8rrrr r*s r*c@s(eZdZdZdZdZdZdZdZdZ dZ d Z dZ dZ dZdZdZd ZdZd Zd ZdZd ZdZdZdZdZdZdZdZdZdZdZ dZ!dZ"dZ#dZ$dZ%dZ&dZ'dZ(d Z)d!Z*d"Z+d#Z,d$Z-d%Z.d&Z/d'Z0d(Z1d)Z2d*Z3d+Z4d,Z5d-Z6d.Z7d/Z8d0Z9d1Z:d2Z;d3Zd6Z?d7Z@d8ZAd9ZBd:ZCd;ZDdZGd?ZHd@ZIdAS)B SecurityConstzU A class object that acts as essentially a namespace for Security constants. rrrririiiiiiiiiiiiiiiiiii iQi,iRi,i0i+i/iii$i(i ik9i#i'i ig3=<5/iiiiN)Jr+r,r-r."kSSLSessionOptionBreakOnServerAuth kSSLProtocol2 kSSLProtocol3 kTLSProtocol1kTLSProtocol11kTLSProtocol12kTLSProtocol13kTLSProtocolMaxSupportedkSSLClientSidekSSLStreamTypekSecFormatPEMSequencekSecTrustResultInvalidkSecTrustResultProceedkSecTrustResultDenykSecTrustResultUnspecified&kSecTrustResultRecoverableTrustFailure kSecTrustResultFatalTrustFailurekSecTrustResultOtherErrorerrSSLProtocolerrSSLWouldBlockerrSSLClosedGracefulerrSSLClosedNoNotifyerrSSLClosedAborterrSSLXCertChainInvalid errSSLCryptoerrSSLInternalerrSSLCertExpirederrSSLCertNotYetValiderrSSLUnknownRootCerterrSSLNoRootCerterrSSLHostNameMismatcherrSSLPeerHandshakeFailerrSSLPeerUserCancellederrSSLWeakPeerEphemeralDHKeyerrSSLServerAuthCompletederrSSLRecordOverflowerrSecVerifyFailederrSecNoTrustSettingserrSecItemNotFounderrSecInvalidTrustSettings'TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384%TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384'TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256%TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256-TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256+TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256#TLS_DHE_RSA_WITH_AES_256_GCM_SHA384#TLS_DHE_RSA_WITH_AES_128_GCM_SHA256'TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384%TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384$TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA#TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 TLS_DHE_RSA_WITH_AES_256_CBC_SHA'TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256%TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256$TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA#TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 TLS_DHE_RSA_WITH_AES_128_CBC_SHATLS_RSA_WITH_AES_256_GCM_SHA384TLS_RSA_WITH_AES_128_GCM_SHA256TLS_RSA_WITH_AES_256_CBC_SHA256TLS_RSA_WITH_AES_128_CBC_SHA256TLS_RSA_WITH_AES_256_CBC_SHATLS_RSA_WITH_AES_128_CBC_SHATLS_AES_128_GCM_SHA256TLS_AES_256_GCM_SHA384TLS_AES_128_CCM_8_SHA256TLS_AES_128_CCM_SHA256rrrr r1sr1)r. __future__rplatformctypesrrrrrrr r r r r r ctypes.utilr packages.sixrsystemrmac_verversiontuplemapintsplitrrr!r"r#BooleanCFIndexr/CFDataCFStringCFArrayCFMutableArray CFDictionaryCFErrorCFTypeCFTypeID CFTypeRefCFAllocatorRefOSStatus CFDataRef CFStringRef CFArrayRefCFMutableArrayRefCFDictionaryRefCFArrayCallBacksCFDictionaryKeyCallBacksCFDictionaryValueCallBacksSecCertificateRefSecExternalFormatSecExternalItemTypeSecIdentityRefSecItemImportExportFlags SecItemImportExportKeyParametersSecKeychainRef SSLProtocolSSLCipherSuite SSLContextRef SecTrustRefSSLConnectionRefSecTrustResultTypeSecTrustOptionFlagsSSLProtocolSideSSLConnectionTypeSSLSessionOption SecItemImportargtypesrestypeSecCertificateGetTypeIDSecIdentityGetTypeIDSecKeyGetTypeIDSecCertificateCreateWithDataSecCertificateCopyDataSecCopyErrorMessageString SecIdentityCreateWithCertificateSecKeychainCreateSecKeychainDeleteSecPKCS12Import SSLReadFunc SSLWriteFunc SSLSetIOFuncs SSLSetPeerIDSSLSetCertificateSSLSetCertificateAuthoritiesSSLSetConnectionSSLSetPeerDomainName SSLHandshakeSSLReadSSLWriteSSLCloseSSLGetNumberSupportedCiphersSSLGetSupportedCiphersSSLSetEnabledCiphersSSLGetNumberEnabledCiphersargtypeSSLGetEnabledCiphersSSLGetNegotiatedCipherSSLGetNegotiatedProtocolVersionSSLCopyPeerTrustSecTrustSetAnchorCertificates!SecTrustSetAnchorCertificatesOnly argstypesSecTrustEvaluateSecTrustGetCertificateCountSecTrustGetCertificateAtIndexSSLCreateContextSSLSetSessionOptionSSLSetProtocolVersionMinSSLSetProtocolVersionMaxSSLSetALPNProtocolsAttributeErrorin_dllr$r%CFRetain CFRelease CFGetTypeIDCFStringCreateWithCStringCFStringGetCStringPtrCFStringGetCString CFDataCreateCFDataGetLengthCFDataGetBytePtrCFDictionaryCreateCFDictionaryGetValue CFArrayCreateCFArrayCreateMutableCFArrayAppendValueCFArrayGetCountCFArrayGetValueAtIndexr&r'r(r)objectr*r1rrrr s( 8